CUPS IPP Packets Processing Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running CUPS, and is prone to Denial of Service Vulnerability.

Impact

An attacker can exploit will allow application to crash. Impact Level: Application

Solution

Upgrade to version 1.3.10 or latest http://www.cups.org/software.php

Insight

The flaw is cause due to a NULL-pointer dereference that occurs when processing two consecutive IPP_TAG_UNSUPPORTED tags in specially crafted IPP (Internet Printing Protocol) packets.

Affected

CUPS version prior to 1.3.10

References

http://www.coresecurity.com/content/AppleCUPS-null-pointer-vulnerability

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0949

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

FreeRADIUS Tunnel-Password Denial Of Service Vulnerability
Comodo Internet Security Denial of Service Vulnerability-02
avast! AntiVirus Multiple BOF Vulnerabilities (Linux)
ddrLPD Remote Denial of Service Vulnerability
Asterisk Products Invalid SDP SIP Channel Driver DoS Vulnerability

CUPS IPP Packets Processing Denial of Service Vulnerability

Take action and discover your vulnerabilities